Hi, How about writing a class similar to the
X509CertificateCredentialsToSerialNumberPrincipalResolver that extends the AbstractX509CertificateCredentialsToPrincipalResolverand simply chopping of the chars you want to ignore before returning the string in the resolvePrincipalInternal() function?
Regards, Joachim Francisco Estanqueiro schrieb:
Anyone? Francisco Estanqueiro wrote:Hello everyone,I would like to know if there's a way for me to remove characters from an attribute from an X509 Certificate and match it with an LDAP attribute. My config is:Attribute from X509: <property name="identifier" value="$SERIALNUMBER" /> Attribute to Match: <property name="filter" value="description=%u" />This works beautifully if they are the same.. but my problem is I want to ignore the first two and the last characters from $SERIALNUMBER and then match it with the ldap attribute "description".Example: $SERIALNUMBER: XX123123123X description: 123123123 Its possible? Thanks, Francisco
-- Joachim Fritschi Hochschulrechenzentrum (HRZ) L1|01 Raum 248 Petersenstr. 30 64287 Darmstadt Tel. +49 6151 16-5638 Fax. +49 6151 16-3050 E-Mail: [email protected]
smime.p7s
Description: S/MIME Cryptographic Signature
